Remote trigger for security system

ABSTRACT

Systems, methods, and techniques for mitigating retail theft include securing items at a receptacle of a retailer via an electronic lock, and providing a transceiver that is proximate to the secured items and that transmits a beacon which may be detected by a personal electronic device (PED) of a customer. Based on a wireless transmission between the PED and the transceiver, a customer&#39;s identity may be determined and the customer&#39;s risk profile may be accessed. A risk score corresponding to the customer accessing the secured item may be determined based on the customer&#39;s risk profile and optionally based upon a profile of the secured item. If the risk score is indicative of an acceptable risk, a trigger to remotely unlock the electronic lock may be sent, thereby remotely and automatically allowing qualified customers to access secured items. An item&#39;s removal may be detected and tracked.

CROSS-REFERENCE TO RELATED APPLICATIONS

This is a continuation application that claims priority to and thebenefit of the filing date of U.S. application Ser. No. 16/184,599,filed Nov. 8, 2018 (which issued as U.S. Pat. No. 10,522,017 on Dec. 31,2019), and entitled “REMOTE TRIGGER FOR SECURITY SYSTEM,” which is acontinuation of U.S. application Ser. No. 15/689,469, filed Aug. 29,2017 (which issued as U.S. Pat. No. 10,192,417 on Jan. 29, 2019) andentitled “REMOTE TRIGGER FOR SECURITY SYSTEM,” which is a continuationof U.S. application Ser. No. 15/194,725, filed Jun. 28, 2016 (whichissued as U.S. Pat. No. 9,779,603 on Oct. 3, 2017) and entitled “REMOTETRIGGER FOR SECURITY SYSTEM,” the entire disclosures of which areincorporated herein by reference.

TECHNICAL FIELD

This application generally relates to mitigating or preventing retailtheft. In particular, this application relates to automatically and/ortriggering the remote unlocking of a secured item for customer accessbased on a risk profile of the customer.

BACKGROUND

Presently, in certain retail locations, specific products are secured tohelp deter or prevent theft. Items may be stored in locked receptacles,or items may be individually secured to a receptacle, such as acontainer, bin, shelf, rack, or other object. For example,battery-operated shaving razors and higher-end cosmetics may be housedwithin locked receptacles. If a customer would like to examine and/orpurchase an item that is secured at such a receptacle, the customer mustfind a store manager or associate to physically unlock the item so thatthe customer is able to physically examine the product. If the customerdesires to purchase the product, he or she takes it up to the registerto complete the transaction. Irrespective of whether or not the customerpurchases the product, the store manager or associate must physicallyre-secure the receptacle or the other items at the receptacle.

Portable electronic devices such as smart phones and tablet devices arebecoming more ubiquitous as underlying technology and device capabilityimproves. These devices incorporate numerous components that supportvarious device functions and applications. For example, current smartphones include components that enable network connections as well aslocation modules capable of detecting device location.

SUMMARY

In an embodiment, a method for mitigating retail theft includesdetermining an identity of a customer based on a wireless transmissiondelivered directly between a personal electronic device (PED) of thecustomer and a transceiver at or corresponding to a receptacle at whichan item is secured via an electronic lock. For example, the customer'sPED may automatically discover a beacon signal being transmitted by atransceiver corresponding to the receptacle and/or to the secured item,and the customer's PED may automatically establish a wireless connectionwith the transceiver. Alternatively, the customer's PED may alert thecustomer to the discovered beacon, and the customer may manuallyinstruct the PED to request the remote unlocking of the electronic lock,e.g., via the establishment of a wireless connection with thetransceiver. The customer's identity may be determined based oninformation included in the header and/or the payload of the wirelesstransmission, for example.

Based on the determined customer identity, a risk profile of thecustomer may be accessed, and a risk score corresponding to the customeraccessing the secured item may be determined based on the risk profile(and, optionally, based on a profile of the item secured at thereceptacle). The method may include determining whether or not the riskscore is indicative of an acceptable risk. If the risk is determined tobe acceptable, the method may include automatically sending anelectronic signal to trigger the remote unlocking of the electroniclock, thereby remotely causing the item to be unsecured for access bythe customer. If the risk is determined to be unacceptable, the methodmay include sending an electronic signal to a device operated by anagent of the retailer or enterprise providing the item, and the agentmay then manually unsecure the item so that the customer is providedaccess to the item in the presence of the agent. Alternatively, theagent may choose to send an electronic signal from his or her device toremotely trigger the remote unlocking of the electronic lock, andthereby may remotely cause the item to be unsecured for access by thecustomer.

In an embodiment, a system for mitigating retail theft includes awireless transceiver disposed at or in the proximity of a receptacle,and an electronic lock that secures an item within, at, or to thereceptacle. Additionally, the system includes a security system to whichthe wireless transceiver and electronic lock are communicativelyconnected. The security system may include one or more data storageentities that store a plurality of risk profiles corresponding to aplurality of customers of an enterprise or retailer that provides thesecured item. The security system may generate an electronic signalcorresponding to unlocking the electronic lock based on a risk scorecorresponding to a particular customer accessing the secured item. Theidentity of the particular customer may be determined automaticallybased on a wireless transmission delivered between a Personal ElectronicDevice (PED) of the customer and the wireless transceiver.

BRIEF DESCRIPTION OF THE DRAWINGS

The accompanying figures, where like reference numerals refer toidentical or functionally similar elements throughout the separateviews, together with the detailed description below, are incorporated inand form part of the specification, and serve to further illustrateembodiments of concepts that include the claimed embodiments, andexplain various principles and advantages of those embodiments.

FIGS. 1A-1D illustrate various front end and back end devices andcomponents of an example system for mitigating retail theft, andconnections therebetween, in accordance with some embodiments;

FIG. 2 depicts an example layout of an example physical retail store ofa retailer or enterprise;

FIG. 3 depicts an example portion of the system of FIG. 1 in greaterdetail;

FIG. 4 illustrates an example signal diagram associated with mitigatingthe risk of retail theft at a physical store of a retailer or enterprisewhich, inter alia, includes an example signal flow for remotelyunlocking a secured receptacle; and

FIGS. 5A-5B illustrate a flowchart of an example method for mitigatingthe risk of retail theft at a physical store of a retailer orenterprise.

DETAILED DESCRIPTION

The systems, methods, and techniques disclosed herein relate generallyto mitigating and/or preventing retail theft. In particular, thesystems, methods, and techniques disclosed herein relate to theautomatic and/or remote trigger of the unlocking of a secured item sothat a customer may examine and/or access the item. According to certainaspects, the systems and methods may leverage communications and otherhardware and software capabilities of electronic devices to provide theautomatic and/or remote unlocking of secured items while simultaneouslymitigating the risk to a retailer or enterprise.

In an embodiment, a wireless transceiver or equivalent (e.g., atransmitter and receiver pair) may be disposed on, near, proximate to,or at a secured item. The secured item may be provided by an enterpriseor a retailer, and may be an item that is offered for sale. The item maybe secured via an electronic lock in any number of ways. For example,the item may be housed within a receptacle, typically along with otherinventory, and an opening or door of the receptacle may be secured orlocked by the electronic lock. In another example, the item may beindividually secured to a receptacle (which may be a container, bin,shelf, rack, or some other object) via an electronic lock. The wirelesstransceiver may be disposed on, at, or proximate to the secured item orreceptacle. For example, the wireless transceiver may be fixedlyattached to the item, to the receptacle, or to some other object withinthe vicinity of the secured item.

Generally speaking, the wireless transceiver is configured to wirelesslycommunicate with any known wireless computing devices, such as smartphones, tablets, laptops, and/or personal electronic devices (“PEDs”).For example, the wireless transceiver may be configured to operate usingany number of known common air interface protocols, such as cellularcommunication protocols (e.g., GSM, CDMA, PCS, LTE, etc.), wirelessnetworking protocols (e.g., Wi-Fi and/or other IEEE 802.11 protocols,etc.), short-range communication protocols (e.g., Bluetooth, infraredcommunication, Zigbee, etc.), and any other known wireless protocolutilized by personal electronic devices. Further, the wirelesstransceiver is positioned, disposed, located, and/or configured so thatit has the ability to receive wireless signals over any one or more ofthese common air interface protocols from a personal electronic devicewhen the PED is the vicinity or proximity of the secured item. Awireless signal that is detected or received by the wireless transceivermay have been automatically generated by a PED, for example, as a resultof the PED and the wireless transceiver automatically discovering eachother via Bluetooth or some other suitable discovery protocol.Additionally or alternatively, a wireless signal that is detected orreceived by the wireless transceiver may have been generated manually ata PED, e.g., upon a user's activation of a user control at the PED inresponse to being notified that the PED is within proximity of thetransceiver, and therefore within proximity of the secured item.

A wireless signal that is received at a transceiver corresponding to asecured item may include contents that are indicative of a particularcustomer of the retailer or enterprise. For example, the wireless signalmay include an identification of the PED, an identification of thecustomer, an identification of an account that the customer has with theretailer or enterprise, and/or an identification of an application thatis executing on the PED and that corresponds to the retailer orenterprise. The particular customer's identity may be utilized to accessthe customer's risk profile, which may include data corresponding toprevious interactions that a particular customer has had with theretailer or enterprise. The data stored in the particular customer'srisk profile may in turn be utilized to determine a risk scorecorresponding to the particular customer accessing the secured item. Ifthe risk score indicates an acceptable risk, the item may beautomatically and remotely unsecured (e.g., the electronic lock may beautomatically and remotely unlocked) so that the particular customer isable to access and handle the item. On the other hand, if the risk scoreindicates an unacceptable risk, an agent of the retailer enterprise(e.g., an employee, a store associate, security personnel, etc.) may benotified so that the electronic lock may be manually unlocked for theparticular customer in the presence of the agent. As such, the systems,methods, and techniques described herein allow a retailer enterprise toremotely permit access to a customer for high-value items/goods based ona risk profile of the customer, thereby decreasing the risk of theft aswell as decreasing the length of time that a qualified customer mustwait in order to access secured items, as will be described below.

Turning now to FIG. 1, FIG. 1 illustrates an overall system 100including various components configured to implement various embodimentsfor mitigating the risk of retail theft. In particular, the system 100may include various components configured to trigger the remoteunlocking of secured receptacles in a manner that mitigates the risk ofretail theft. The system 100 may include a combination of hardware andsoftware components, as well as various data communication channels forcommunicating data between and among the various hardware and softwarecomponents. The system 100 may be roughly divided into front-endcomponents 102 and back-end components 104. At least one of thefront-end components 102 may be primarily disposed within a retailnetwork 110 that may include one or more physical retail stores 112 ofan enterprise or retailer. The physical retail stores 112 may belocated, by way of example rather than limitation, in separategeographic locations from each other, including different areas of thesame city, different cities, or even different states. According to thepresent embodiments, each of the physical retail stores 112 may be a“brick and mortar” store that may include one or more physical buildingsor structures, where each of the physical retail stores 112 mayaccommodate shoppers and customers. A brick and mortar store may bedistinguished from a mail-order store of the retailer enterprise, andmay be distinguished from an electronic store, on-line store, or websiteof the retailer or enterprise.

The front-end components 102 may include a number of workstations 128 orcomputing devices. The workstations 128 may be local computers locatedin the various physical retail stores 112 throughout the retail network110 and may be capable of executing various applications. Retail storepersonnel or agents (not shown) may use the applications executing atthe workstations 128 to, for example, access customer information,access images, enter payment information, and/or perform other datamanagement functions associated with the physical retail stores 112.

Personal electronic devices (PEDs, also referred to herein as mobiledevices or client devices) 206-216 (e.g., personal computers, cellularphones, smart phones, tablets, other handheld electronic devices, etc.)may be communicatively connected to the physical retail stores 112and/or to the back end components 104 through one or more digitalnetworks 130, as described below. The client devices 206-216 may, butneed not be, disposed within the retail network 110. Further, particularones of the client devices 206-216 may be operated by customers of theretailer or enterprise, while other ones of the client devices 206-216may be operated by agents of the retailer or enterprise, e.g., as mobileinstances of the workstations 128.

Those of ordinary skill in the art will recognize that the front-endcomponents 102 may also comprise a plurality of facility servers 126disposed at the plurality of physical retail stores 112 instead of, orin addition to, a plurality of workstations 128. In an exampleconfiguration, each of the physical retail stores 112 may include one ormore facility servers 126 that may facilitate communications between theworkstations 128 of the physical retail stores 112 via the digitalnetwork(s) 130, and may store information for a plurality ofcustomers/employees/accounts/etc. associated with each facility. Ofcourse, a local digital network 184 may also operatively connect each ofthe workstations 128 to the facility server 126. Unless otherwiseindicated, any discussion of the workstations 128 may also refer to thefacility servers 126, and vice versa. Moreover, environments other thanthe physical retail stores 112 may employ the workstations 128 and theservers 126.

The front-end components 102 may communicate with the back-endcomponents 104 via the digital communication network(s) 130. One or moreof the front-end components 102 may be excluded from communicating withthe back-end components 104 by configuration or by limiting access dueto security concerns. For example, certain ones of the client devices206-216 may be excluded from direct access or only provided with limitedaccess to the back-end components 104. In some embodiments, the physicalretail stores 112 may communicate with the back-end components via thedigital network(s) 130. In other embodiments, the physical retail stores112 and the client devices 206-216 may communicate with the back-endcomponents 104 via the same portions of the digital network 130, butdigital access rights, IP masking, and other network configurations maydeny access to the client devices 206-216. In an embodiment, the network130 may include respective, local wireless communication networksprovided in or near the physical retail stores 112 via which clientdevices 206-216 may communicatively connect to other front-endcomponents 102 and/or to the back-end components 104. The network 130may additionally or alternatively support communicative connectionsbetween applications 118 executing on the devices 206-216 and theback-end components 104. For example, the applications 118 may include aweb-browser and/or a downloaded retailer client application that maycommunicate with one or more back-end components 104 via the network130.

The digital network(s) 130 may be a proprietary network, a secure publicInternet, a virtual private network or some other type of network, suchas dedicated access lines, plain ordinary telephone lines, satellitelinks, wireless links, wired links, combinations of these, etc. Wherethe digital network 130 comprises the Internet, data communication maytake place over the digital network 130 via an Internet communicationprotocol. In addition to one or more servers 202 that are configured tocommunicate with client or front-end applications (e.g., as describedbelow), the back-end components 104 may include the central processingsystem 140.

Of course, the physical retail stores 112 may be communicativelyconnected to different back-end components 104 having one or morefunctions or capabilities that are similar to the central processingsystem 140. The central processing system 140 may include one or morecomputer processors 162 adapted and configured to execute varioussoftware applications and components of the system 100, in addition toother software applications. The central processing system 140 mayfurther include one or more databases 146. The database(s) 146 maycomprise one or more data storage devices that are adapted to store datarelated to the operation of the system 100, such as product data and/orcustomer data. In particular, the database(s) 146 may store informationassociated with items/products and/or services that are available forsale in various ones of the physical retail stores 112. For example, thedatabase(s) 146 may store locations of the items/products (e.g., aislenumber or other information), pricing information, availability andinventory information, coupon(s) associated with the items/productsand/or services, and more detailed information associated with theitems/products and/or services (e.g., product descriptions).Additionally or alternatively, the database(s) 146 may store informationrelated to various customers or users associated with the retailer,e.g., user accounts. The central processing system 140 may access datastored in the database(s) 146 when executing various functions and tasksassociated with the operation of the system 100. The central processingsystem 140 may also maintain and update the data stored in thedatabase(s) 146. For example, the central processing system 140 maygenerate coupons for the items/products and/or services, updateavailability and inventory information (such as if a certain product ispurchased from one of the physical retail stores 112), and/or updatepasswords, user preferences, and default payment methods for varioususers.

To support the mitigation of the risk of retail theft at the physicalretail stores 112, the databases(s) 146 may include a customer riskprofile data store 148 and an item profile data store 150. The customerrisk profile store 148 may store therein customer-specific data that isor may be indicative of whether or not a particular customer isassociated with an increased level of risk to the retailer orenterprise. As such, a particular customer's risk profile that is storedin the risk profile store 148 may include data corresponding to thecustomer's on-line browsing habits, purchases, returns, and/or otherelectronic interactions with the enterprise or retailer, and theparticular customer's risk profile may include data corresponding to thecustomer's bricks-and-mortar storefront purchases, returns, and/or otherinteractions with the enterprise or retailer at retail store locations.For example, a particular customer's risk profile may include dataindicative of whether or not the customer has a past history of unpaiditems, whether or not the customer has a past history of returningitems, whether or not a customer has had a check returned withinsufficient funds, etc. The item profile store 150 may store thereinitem-specific data that is indicative of whether or not a particularitem is associated with increased level of risk. For example, aparticular item profile stored in the item profile store 150 may includedata indicative of the value of the particular item, whether or not theparticular item has a history of being shoplifted or stolen, etc.

With regard to the database(s) 146, it should be appreciated thatadditional data and additional techniques for maintaining and updatingthe data are appreciated. It should also be appreciated that althoughthe database(s) 146 is shown as a single entity in FIG. 1A, the database146 may be implemented using any one or more databases and any one ormore data storage devices. For example, the database(s) 146 may beimplemented by a data bank or a data cloud.

Further, although FIG. 1A depicts the system 100 as including thecentral processing system 140 in communication with three physicalretail stores 112 and various client devices 206-216, it should beunderstood that different numbers of processing systems, retail stores,and devices may be utilized. For example, the digital network(s) 130 (orother digital networks, not shown) may interconnect the centralprocessing system 140 to a plurality of included central processingsystems 140, hundreds of physical retail stores 112, and thousands ofclient devices 206-216. According to the disclosed example, thisconfiguration may provide several advantages, such as, for example,enabling near real-time uploads and downloads of information as well asperiodic uploads and downloads of information. This may provide for aprimary backup of all the information generated in supportedfunctionalities. Alternatively, some of the physical retail stores 112may store data locally on the facility server 126 and/or theworkstations 128.

FIG. 1A also depicts one possible embodiment of the central processingsystem 140. The central processing system 140 may have a controller 155operatively connected to the database 146 via a link 156 connected to aninput/output (I/O) circuit 166. It should be noted that, while notshown, additional databases may be linked to the controller 155 in aknown manner.

The controller 155 may include a program memory 160, the processor 162(which may be called a microcontroller or a microprocessor), arandom-access memory (RAM) 164, and the input/output (I/O) circuit 166,all of which may be interconnected via an address/data bus 165. Itshould be appreciated that although only one microprocessor 162 isshown, the controller 155 may include multiple microprocessors 162.Similarly, the memory of the controller 155 may include multiple RAMs164 and multiple program memories 160. Although the I/O circuit 166 isshown as a single block, it should be appreciated that the I/O circuit166 may include a number of different types of I/O circuits. The RAM(s)164 and the program memories 160 may be implemented as semiconductormemories, magnetically readable memories, and/or optically readablememories, for example. A link 135 may operatively connect the controller155 to the digital network 130 through the I/O circuit 166.

The program memory 160 may also contain or be configured withmachine-readable instructions (i.e., software) 171, for execution by theprocessor 162. The software 171 may perform the various tasks associatedwith operation of the retail stores, and may be a single module 171 or aplurality of modules 171A, 171B. While the software 171 is depicted inFIG. 1A as including two modules, 171A and 171B, the software 171 mayinclude any number of modules accomplishing tasks related to retailstore operation. The central processing system 140 may implement aserver application 113 for providing data to a user interfaceapplication 111 operating on the workstations 128.

Further, although FIG. 1A illustrates the central processing system 140as including only one controller 155, it is understood that this is forease of illustration and is not meant to be limiting. Indeed, in someembodiments of the system 100, the central processing system 140 may beimplemented using multiple controllers 155 that have a unitary orintegral logical appearance. For example, the central processing system140 may be implemented as a bank of servers or on a computing cloud.

As shown in FIG. 1A, the system 100 for mitigating the risk of retailtheft may include one or more security modules 152. Typically, eachfacility server 126 may include a respective security module 152.However, in some implementations, security modules 152 may be disposedat the front end 102 in one or more workstations 128 and/or in one ormore client devices 206-216, e.g., as a portion of a client applicationprovided by the retailer or enterprise or as a separate application 118.In some implementations, security modules 152 may be disposed at theback end 104 at the central processing system 140, e.g., as a portion ofa server application or as a separate application 113, and/or as one ofthe software modules 171. Some security modules 152 each may be disposedat a single location or device. Some security modules 152 each may bedisposed across multiple locations and/or devices, such as when aparticular instance of a security module 152 is instantiated by a firstportion downloaded onto a client device 206-216 and a second portionexecuting at a facility server 126. Generally speaking, the one or moresecurity modules 152 included in the system 100 may operate inconjunction with the risk profile store 148 (and optionally the itemprofile store 150) to mitigate the risk of retail theft atbrick-and-mortar retail store locations 112, as will be described inmore detail in later sections. Accordingly, the one or more securitymodules 152, the risk profile store 148, and optionally the item profilestore 150 may comprise a security system or security subsystem includedin the system 100 for mitigating the risk of retail theft. Of course,other components illustrated in and/or discussed with respect to FIGS.1A-1D may also be included in the security system or security subsystem,in some embodiments.

At any rate, for purposes of implementing the system 100, a user mayinteract with the server 202 and the retail store systems (e.g., thecentral processing system 140, the facility servers 126, theworkstations 128, etc.) via one of the client devices 206-216 via amobile device application, a specialized application, or one or more webpages 118. In an example, FIG. 1B depicts the server 202 connected viathe network 130 to the client devices 206-216 executing or runningapplications 118 through which a user may initiate and interact with thesystem 100 (as shown in FIG. 1A). The client devices or PEDs 206-216 mayinclude, by way of example, a tablet computer 206, an internet-enabledcell phone 208, a personal digital assistant (PDA) 210, a smart phone212, a laptop computer 214, a desktop computer 216, a portable mediaplayer (not shown), and/or others. Further, each application 118executing on its respective host device 206-216 may be a web browser, aclient application provided by the retailer or enterprise, or some otherclient application via which a communicative connection or session maybe established with the server 202, e.g., to access the electronicretail store of the retailer, and/or to access user account information.In an embodiment, one or more security modules 152 may be incorporatedinto a client application 118, or may be implemented as a stand-aloneapplication or module 118 executing on the client device 206-216.

The client devices 206-216 need not necessarily communicate with thenetwork 130 via a wired connection. In some instances, the clientdevices 206-216 may communicate with the network 130 via wirelesssignals 220 and, in some instances, may communicate with the network 130via an intervening wireless or wired device 218, which may be a wirelessrouter, a wireless repeater, a wireless access point, a base transceiverstation of a mobile telephony provider, etc. Each of the client devices206-216 may interact with the server 202 to receive web pages or serverdata from the server 202 and may display the web pages or server datavia its respective client application 118 (described below). Forexample, the mobile device 212 may display a home screen 222 (i.e., theroot or start page at which users enter the client application) of theretailer client application 118 to the user, may receive an input fromthe user, and may interact with the server 202 depending on the type ofuser-specified input. It will be appreciated that although only oneserver 202 is depicted in FIG. 1B, multiple servers 202 may be providedfor the purpose of distributing server load, serving different webpages, implementing different portions of the electronic retail storeweb interface, servicing different retailer client applications, etc.These multiple servers 202 may include a web server, an entity-specificserver (e.g. an Apple® server, etc.), a server that is disposed in aretail or proprietary network, an independent third-party server that isnot under the control of the entity, a bank of servers, a cloudcomputing platform, or others.

Turning now to FIG. 1C, the server 202, like the facility server 126,may include a controller 224. Similar to the controllers 155 and 170,the controller 224 may include a program memory 226, a microcontrolleror a microprocessor (MP) 228, a random-access memory (RAM) 230, and aninput/output (I/O) circuit 234, all of which may be interconnected viaan address/data bus 232. In some embodiments, the controller 224 mayalso include, or otherwise be communicatively connected to, a database239 or other data storage mechanism (e.g., one or more hard disk drives,optical storage drives, solid state storage devices, etc.). The database239 may include data such as customer web profiles, product data, mobiledevice application data, web page templates and/or web pages, and otherdata that may be used to interact with the user through the network 130.According to embodiments, the database 239 may store the same or similardata as that stored by the database 146 as discussed with respect toFIG. 1A. For example, the database 239 may include at least a portion ofthe customer risk profile data store 148 and/or at least a portion ofthe item profile data store 150. Further, the database 239 may beimplemented on one or more data storage devices.

As discussed with reference to the controllers 155 and 170, it should beappreciated that although FIG. 1C depicts only one microprocessor 228,the controller 224 may include multiple microprocessors 228. Similarly,the memory of the controller 224 may include multiple RAMs 230 andmultiple program memories 226. Although the FIG. 1C depicts the I/Ocircuit 234 as a single block, the I/O circuit 234 may include a numberof different types of I/O circuits. The controller 224 may implement theRAM(s) 230 and the program memories 226 as semiconductor memories,magnetically readable memories, and/or optically readable memories, forexample.

In addition to being connected through the network 130 to the clientdevices 206-216, as depicted in FIG. 1B, FIG. 1C illustrates that theserver 202 may also be connected through the network 130 to the centralprocessing system 140 and/or one or more facility servers 126. Asdescribed below, the connection of the server 202 to the centralprocessing system 140 may assist in facilitating variousfunctionalities. As a result, the server 202 may act as a routing orinterfacing server between the plurality of client devices 206-216 and adestination server, namely, the central processing system 140. Forexample, the server 202 may be configured to communicate with thecentral processing system 140 and with the client devices 206-216 via amultitude of protocols, such as packet-switched protocols, web services,web APIs (Application Programming Interface), etc. The server 202 mayalso convert (if necessary) and route client application data (notshown) to the appropriate server, such as the central process system 140for example. Additionally, the server 202 may act as the destinationserver and need not route any data from the internet-enabled device206-216.

As shown in FIG. 1C, the program memory 226 and/or the RAM 230 may storevarious applications for execution by the microprocessor 228. Forexample, a user-interface application 236 may provide a user interfaceto the server 202, which user interface may, for example, enable anetwork administrator to configure, troubleshoot, or test variousaspects of the server's operation, or otherwise to access informationthereon. A server application 238 may operate to populate and transmitclient application data and web pages to the client devices 206-216,receive information from the user transmitted back to the server 202,and forward appropriate data to the central processing system 140 andthe facility servers 126.

Like the software 171 of FIGS. 1A and 1B, the server application 238 maybe a single module 238 or a plurality of modules 238A, 238B. While theserver application 238 is depicted in FIG. 1C as including two modules,238A and 238B, the server application 238 may include any number ofmodules that may facilitate tasks related to the implementation of theserver 202. By way of example, the module 238A may populate and transmitthe client application data and/or may receive and evaluate inputs fromthe user to receive a data access request, while the module 238B maycommunicate with one or more of the back end components 104 to fulfill adata access request. In an embodiment, one or more security modules 152may be incorporated into a server application 238, or may be implementedas a stand-alone application or module 238.

Referring now to FIG. 1D, the mobile device 212 (or any of the clientdevices 206-216) may include a display 240, a Global Positioning System(GPS) unit 244 (which may include respective one or more sensors), acommunication unit 258 (which may include respective one or moreinterfaces and/or transceivers, at least some of which may be wireless),an image capture device 256, a user-input device (not shown), and, likethe server 202, a controller 242. Similar to the controllers 155 and224, the controller 242 includes a program memory 246, one or moremicrocontroller or a microprocessor (MP) 248, a random-access memory(RAM) 250, and an input/output (I/O) circuit 254, all of which may beinterconnected via an address/data bus 252.

The program memory 246 may include an operating system 260, a datastorage 262, a plurality of software applications 264, and a pluralityof software routines 268. The operating system 260, for example, mayinclude one of a plurality of mobile platforms such as the iOS®,Android™, Palm® webOS, Windows Mobile/Phone, BlackBerry® OS, or Symbian®OS mobile technology platforms, developed by Apple® Inc., Google® Inc.,Palm® Inc. (now Hewlett-Packard Company®), Microsoft Corporation®,Research in Motion® (RIM), and Nokia®, respectively. The data storage262 may include data such as user profiles, application data for theplurality of applications 264, routine data for the plurality ofroutines 268, and other data necessary to interact with the server 202,the facility servers 126, or the server applications 113 through thedigital network 130. In some embodiments, the controller 242 may alsoinclude, or otherwise be communicatively connected to, other datastorage mechanisms (e.g., one or more hard disk drives, optical storagedrives, solid state storage devices, etc.) that may reside within themobile device 212.

The GPS unit 244 may use “Assisted GPS” (A-GPS), satellite GPS, or anyother suitable global positioning protocol, transceivers, sensors, orsystem that locates the position of the mobile device 212. For example,A-GPS utilizes terrestrial cell phone towers or Wi-Fi hotspots (e.g.,wireless router points) to more accurately and more quickly determinelocation of the mobile device 212 while satellite GPS generally may bemore useful in more remote regions that may lack cell towers or Wi-Fihotspots. The communication unit or module 258 may communicate with theserver 202 and other devices via one or more transceivers that supportany one or more suitable wireless communication protocol network ornetworks, such as a wireless cellular telephony network (e.g., GSM,CDMA, LTE, etc.), a WLAN network (or other similar network according to802.11 standards), a WiMAX network, a short-range wireless communicationnetwork (e.g., Bluetooth, Zigbee, infrared, etc.), and/or others.

The image capture device 256 may be a built-in camera within the mobiledevice 212 or may be an external camera, such as a webcam, that iscommunicatively coupled with the mobile device 212 (or any otherinternet-enabled device 206-216). The user-input device or generally auser interface (not shown) may include a “soft” keyboard that isdisplayed on the display 240 of the mobile device 212, an externalhardware keyboard communicating via a wired or a wireless connection(e.g., a Bluetooth keyboard), an external mouse, or any other suitableuser-input device. The user interface (which may include the display240) may be configured to present information to the user and/or receiveinputs from the user, and may accordingly include a set of I/Ocomponents (e.g., capacitive or resistive touch sensitive input panels,keys, buttons, lights, LEDs, cursor control devices, haptic devices, andothers). In embodiments, the display 240 may be a touchscreen displayusing singular or combinations of display technologies and can include athin, transparent touch sensor component superimposed upon a displaysection that is viewable by a user. For example, such displays includecapacitive displays, resistive displays, surface acoustic wave (SAW)displays, optical imaging displays, and the like.

As discussed with reference to the controllers 155 and 224, it should beappreciated that although FIG. 1D depicts only one microprocessor 248,the controller 242 may include multiple microprocessors 248. Similarly,the memory of the controller 242 may include multiple RAMs 250 andmultiple program memories 246. Although the FIG. 1D depicts the I/Ocircuit 254 as a single block, the I/O circuit 254 may include a numberof different types of I/O circuits. The controller 242 may implement theRAM(s) 250 and the program memories 246 as semiconductor memories,magnetically readable memories, and/or optically readable memories, forexample.

The one or more processors 248 may be adapted and configured to executeany one or more of the plurality of software applications 264 and/or anyone or more of the plurality of software routines 268 residing in theprogram memory 242, in addition to other software applications. One ofthe plurality of applications 264 may be a client application 266 thatmay be implemented as a series of machine-readable instructions forperforming the various tasks associated with receiving information at,displaying information on, and transmitting information from the mobiledevice 212. One of the plurality of applications 264 may be a native webbrowser 270, such as, for example, Apple's Safari®, Google Android™mobile web browser, Microsoft Internet Explorer® for Mobile, OperaMobile™, that may be implemented as a series of machine-readableinstructions for receiving, interpreting, and displaying web pageinformation from the server 202, the facility servers 126, or the serverapplications 113 while also receiving inputs from the user.

Another application of the plurality of applications 264 may include alocation awareness application 276 that may be implemented as a seriesof machine-readable instructions for receiving, interpreting, anddisplaying location information of the mobile device 212 (or any otherinternet-enabled device 206-216), e.g., as determined based oninformation detected or determined by the GPS unit 244 and/or by thecommunication unit or module 258. One of the plurality of routines 268may include an image capture routine 272 that coordinates with the imagecapture device 256 to retrieve image data for use with one or more ofthe plurality of applications, such as the client application 266, orfor use with other routines. Another routine in the plurality ofroutines 268 may include an image display routine 274 that receives andinterprets image data of any type or format for display. Likewise, theimage display routine 274 may coordinate with the image capture routine272 to obtain image data and process the image data into a displayableformat for use with the client application 266.

Yet another application of the plurality of applications 264 may includea client application 266 that allows a user to interact with theenterprise or retailer, either electronically and/or to enhance thecustomer's retail experience within a bricks-and-mortar store. Thecustomer or user may launch the client application 266 from aninternet-enabled device, such as one of the client devices 206-216, toaccess the server 202 cooperating with the central processing system 140and the retail network 110. Additionally, the customer or the user mayalso launch or instantiate any other suitable user interface application118 (e.g., the web browser 270, or any other one of the plurality ofsoftware applications 264) to access the server 202, the facilityservers 126, or the server applications 113. Generally, the term “user”is used when referring to a person who is operating one of the clientdevices 206-216 and is not exclusive of the term “customer.” Forexample, multiple users may utilize a particular customer's account,such as when children utilize their parent's account. As describedabove, one or both of the databases 146 and 239, illustrated in FIGS. 1Aand 1C, respectively, may include various information about the retailstore's customers, as well as basic biographical information about thecustomer, such as a customer name, a customer address, a customer phonenumber, coupons redeemed by the customer, and the like. Customer accountrecords are among the exemplary data that the system 100 may store onthe databases 146 and 239.

In an embodiment, the client application 266 may include a securitymodule 152 that operates in conjunction with the client application 266to mitigate the risk of retail theft for the enterprise or retailer. Inother embodiments, the security module 152 may be implemented as aseparate application 264 which may or may not be in communicativeconnection with the client application 266.

In general, a computer program product in accordance with an embodimentincludes a computer usable storage medium (e.g., standard random accessmemory (RAM), an optical disc, a universal serial bus (USB) drive, orthe like) having computer-readable program code embodied therein,wherein the computer-readable program code is adapted to be executed bythe processor 248 (e.g., working in connection with the operating system260) to facilitate the functions as described herein. In this regard,the program code may be implemented in any desired language, and may beimplemented as machine code, assembly code, byte code, interpretablesource code or the like (e.g., via C, C++, Java, Actionscript,Objective-C, Javascript, CSS, XML, and/or others).

Referring now to FIG. 2, FIG. 2 depicts an example layout of an examplephysical retail store 272 of a retailer or enterprise (such as thephysical retail store 112 as described with respect to FIG. 1A). In theexample depicted in FIG. 2, the physical retail store 272 may includedifferent departments or sections (as shown: photo, pharmacy, health,and food/drink); however it should be appreciated that other types ofretail stores and general environments are envisioned. Each of thedifferent departments or sections may include various components,devices, or the like. For example, as depicted in store 272, the photosection may include one or more printers 289 that may be configured toprint digital images.

Customers or users 280, 282 may enter the retail store, browse in thevarious departments or sections, and/or purchase any desireditems/products or services. Each of the customers 280, 282 may beequipped with a respective electronic device 281, 283 (such as one ofthe client devices 206-216 as described with respect to FIG. 1A). Eachelectronic device 281, 283 may be any type of portable electronicdevice, for example, a notebook computer, a tablet, a mobile phone, aPersonal Digital Assistant (PDA), a smart phone, a tablet computer, amultimedia player, an MP3 or MP4 player, a digital or analog broadcastreceiver, a remote controller, or any other electronic apparatus.

According to embodiments, the physical retail store 272 may supportvarious wireless local area networks (WLAN) and/or wireless personalarea networks (WPAN) to which the electronic devices 281, 283 mayconnect, either in a secured or unsecured manner. In an embodiment, oneor more wireless local area networks and/or wireless personal areanetworks that are accessible within or near the physical retail storemay be included in the network 130 of FIG. 1. In one particularimplementation, the physical retail store 272 may include one or morewireless access points (AP) 284 to which the electronic devices 281, 283may connect, e.g. via a suitable transceiver and a WLAN connection.Accordingly, when the electronic devices 281, 283 are connected to theAP 284, the electronic devices 281, 283 may be connected to the localarea network implemented within the physical retail store 272 (i.e., thephysical retail store 272 may be a “hotspot” and/or may provide Wi-Ficonnectivity to the devices 281, 283).

The physical retail store 272 may also be configured with a plurality oftransmitters or transceivers 285, 286, 287, 288 (e.g., “beacons”) thatmay be disposed throughout the area of the physical retail store 272.Although FIG. 2 depicts the physical retail store 272 supporting four(4) transmitters 285-288, it should be appreciated that the physicalretail store 272 may support fewer or additional transmitters. Theplurality of transmitters 285-288 may be disposed in various locationsof the physical retail store 272. Each of the plurality of transmitters285-288 may be secured to various components of the physical retailstore 272 (e.g., shelves, ceiling, receptacles, containers, doors,etc.). Each of the plurality of transmitters 285-288 may include anycombination of hardware and software components, including a module fortransmitting or broadcasting signals. Further, each of the plurality oftransmitters 285-288 may be configured to be powered by a battery or viaanother power source.

According to embodiments, each of the plurality of transmitters ortransceivers 285-288 may support one or more short-range communicationprotocols as radio-frequency identification (RFID), Bluetooth®,Bluetooth® low energy (BLE), Infrared Data Association (IrDA), nearfield communication (NFC), ZigBee, other protocols defined under theIEEE 802 standard, and/or other technologies. Each of the plurality oftransmitters 285-288 may also be configured to broadcast or transmit asignal that may include any stored data. In one embodiment, each of theplurality of transmitters 285-288 may continuously broadcast a signalthat may include a unique identifier of the corresponding transmitter285-288.

The signals that the transmitters or transceivers 285-288 broadcast mayhave an associated detection range depending on the type ofcommunication protocol. Generally, Bluetooth® signals have a range of100 meters and BLE (Bluetooth Low Energy) signals have a range of 50meters. The detection range of the signal that the transmitters 285-288broadcast may also vary and may be programmable. For example, the rangeof a first signal that is broadcast by the transmitter 285 may befifteen (15) meters while the range of a second signal that is broadcastby the transmitter 286 may be twenty-five (25) meters.

When one of the electronic devices 281, 283 is within broadcast range ofone of the transmitters/transceivers 285-288, the electronic devices281, 283 can detect and receive the signal, e.g., via a suitabletransceiver of the electronic device 281, 283. In particular, acommunication module of the electronic devices 281, 283 that supports ashort range communication protocol (e.g., a BLE chip) can detect andreceive the signal. For example, FIG. 1 depicts an example communicationmodule 258 which may be included in the device 281 and/or 283, and FIG.2 depicts the electronic device 281 detecting the signal broadcast bythe transmitter 285 via its communication module 258.

According to embodiments, the electronic devices 281, 283 (and anyapplication executing thereon) may facilitate various features tomitigate the risk of retail theft when connected to various ones of theconnections within the physical retail store 272. In particular, theelectronic devices 281, 283 may detect one or more of thetransmitters/transceivers 285-288, and/or may connect to (or may detectthe availability of) the access point 284. Based on the electronicpresence of the electronic devices 281, 283 within the physical retailstore 272, the facility server 126 may in turn connect to an on-siteserver or a remote server to facilitate the mitigation of the risk ofretail theft, as is described in more detail below.

FIG. 3 depicts an example portion 300 of the system 100 of FIG. 1 ingreater detail. The portion 300 includes an area or section 302 of theexample physical retail store 272 of FIG. 2 that includes therein aportion of the front end-system 102 of FIG. 1. The portion 300 alsoincludes a portion 304 of the backend system 104 of FIG. 1. The portion300 may operate to mitigate the risk of retail theft in the physicalretail store 272, for example. Thus, for ease of discussion, FIG. 3 isdiscussed with simultaneous reference to FIGS. 1A-1D and FIG. 2.

As illustrated in FIG. 3, the area or section 302 of the physical retailstore 272 may include one or more receptacles 305, each of whichrespectively houses or stores one or more items 308 therein, such asretail items offered for sale by the retailer. The items 308 are securedwithin their respective receptacle 305 via an electronic lock 310 thatmay be electronically activated and deactivated. For example, asdepicted in FIG. 3, the receptacle 305 a stores one or more items 308 atherein, and the receptacle 305 a as a whole is secured via a singleelectronic lock 310 a, e.g., by locking a cover, flap, slot, or door ofthe receptacle 305 a using the electronic lock 310 a. Also asillustrated in FIG. 3, the receptacle 305 b stores one or more items 308b therein, however, the receptacle 305 b as a whole is not secured by anelectronic lock 310. Rather, each item 308 b is secured to thereceptacle 305 b via a respective electronic lock 310 b, eitherindividually and/or in groups of items. For example, the receptacle 305b may be a shelf, rack, bin, or other type of receptacle.

Typically, the types of items 308 that are secured within or to thereceptacles 305 in the retail store 272 have particular characteristicsthat render the items 308 as having a higher risk of being shoplifted orstolen. Such characteristics may include, for example, a relatively highvalue or cost, a relatively high black market or resale value or demand,a history of being shoplifted, a requirement for checking customer's agebefore purchase, etc.

Additionally, each receptacle 305 in the area or section 302 of theexample physical retail store 272 is associated with a correspondingwireless transceiver 312. The wireless transceiver 312 may be disposedor located on or at the receptacle 305 (as is illustrated by thetransceiver 312 a), or the transceiver may be disposed or locatedproximate to the receptacle 305, e.g., within sufficient proximity ofthe receptacle 305 so that a mobile device 315, when operated by acustomer who is in vicinity of the receptacle 305 and who may beinterested in handling the items 308 stored therein, is able to detectsignals generated by the wireless transceiver 312, e.g., when thecustomer device 315 is within the detection range of the transceiver 312(as is illustrated by the transceiver 312 b). The customer device 315may be one of the mobile devices 206-214 or 281, 283, for example, andthe wireless transceiver 312 may be one of the transmitters 285-288which may support a short-range communication protocol such asradio-frequency identification (RFID), Bluetooth®, Bluetooth® low energy(BLE), Infrared Data Association (IrDA), near field communication (NFC),ZigBee, other protocols defined under the IEEE 802 standard, and/orother technologies. For example, the wireless transceiver 312 maytransmit (e.g., continuously or intermittently) a beacon signal using ashort-range communication protocol, or may transmit some other suitablewireless signal that is able to be detected and/or discovered by thecustomer device 315 when the customer device 315 is within the detectionrange of the wireless transceiver 312.

As further shown in FIG. 3, the transceivers 312 and the electroniclocks 310 within the physical retail store 272 may be communicativelyconnected to the store's facility server 126, e.g., in a manner such aspreviously discussed with respect to FIG. 2. Typically, the transceivers312 and the electronic locks 310 may be connected to the facility server126 via any number of in-store wired and/or wireless network connectionsor network(s) 318, and the connections via which the transceivers 312and the electronic locks 310 may be secured and are not accessible tothe public. In some configurations, the transceivers 312 and/or theelectronic locks 310 may be additionally or alternativelycommunicatively connected via the in-store network(s) 318 and one ormore external networks 130 to one or more components of the backendsystem 104, such as to the central processing system 140.

Still further as shown in FIG. 3, one or more devices 320 that are beingoperated by agents of the retailer or enterprise (e.g., storeassociates, risk management personnel, etc.) may be communicativelyconnected to the in-store network(s) 318. The agent device 320 may beone of the devices 206-216 or 281, 283, for example, and may be a mobiledevice or may be a stationary device. As such, the agent device 320 maybe communicatively connected to the facility server 126, theworkstations 128, and/or to the electronic locks 310, e.g., via awireless access point 284 or a wired connection 322, both of which maybe included in the in-store network(s) 318. In some situations, multipleagent devices 320 may be communicatively connected to the in-storenetwork(s) 318. Typically, the connections via which the agent devices320 are connected to the in-store network(s) 318 may be secured and notaccessible to the public.

To mitigate the risk of retail theft, the facility server 126 mayexecute thereon a local server security application 325 a which, in someembodiments, includes the security module 152 of FIG. 1 or an instancethereof. In some embodiments, one or more agent devices 320 may executethereon a respective local device security application 325 b. The localserver security application 325 a may operate in conjunction with one ormore local device security applications 325 b to mitigate the risk ofretail theft within the store 272. In some configurations, though,either the local server security application 325 a or the local devicesecurity applications 325 b may be omitted.

Now turning to the portion 304 of the backend system 104 depicted inFIG. 3, the portion 304 may include one or more applications and/orroutines 328 that support the retailer or enterprise. At least some ofthe applications 328 may be, for example, a server application 113 orsoftware module 171 at the central processing system 140, and/or atleast some of the applications 328 may be an application or module 238at the server 202. At any rate, the applications/routines 328 includedin the portion 304 of the backend system 104 may include a customerauthentication/verification module 330 that, when executed,authenticates and verifies an electronic presence of a customer, aserver application 332 that operates in conjunction with clientapplications 118 that are provided by the retailer enterprise anddownloaded to various customer devices 315, an application that managesa loyalty card or incentive program 335 provided by the retailer orenterprise, an application that manages an electronic or web-basedaccount of customers of the retailer or enterprise 338, and/or otherapplications/routines 340.

As further illustrated in FIG. 3, the application/routines 328 may haveaccess to at least a portion of the data stored in the database(s) 146.For example, the loyalty program application 335 may access dataindicative transactions and rewards that have been issued to customers,and the electronic customer account application 338 may access storedcredit card information.

To mitigate the risk of retail theft, the applications/routines 328 mayinclude a remote security application 342. In an embodiment, the remotesecurity application 342 includes an instance of the security module 152of FIG. 1. In some embodiments, the remote security application 342 maybe integrally implemented with one or more other applications 328, suchas with the customer authentication and verification application 330 orthe server application 332. The remote security application 342 mayoperate in conjunction with the local security application(s) 342 andmay access data stored in the customer risk profile store 148 andoptionally data stored in the item profile store 150 to utilize inmitigating the risk of retail theft, which may include the remotetriggering of secured receptacles, as is described below.

Specifically, FIG. 4 depicts an example signal diagram 400 associatedwith mitigating the risk of retail theft at a physical store of aretailer or enterprise, e.g., by automatically triggering the unlockingor un-securing of items for particular customers. For ease ofdiscussion, and not for limitation purposes, FIG. 4 is discussed withsimultaneous reference to FIGS. 1A-1D, FIG. 2, and FIG. 3, although thesignal diagram 400 of FIG. 4 may be utilized with other systems andother computing devices.

The signal diagram 400 indicates a personal electronic device (PED) 405and a server 408. A user or customer of a retailer may operate thepersonal electronic device 405, for example, and the device 405 may be asmart phone, tablet, laptop, or other PED that is configured withwireless capabilities. For example, the personal electronic device 405may be one of the devices 206-214 of FIGS. 1A and 1B. The server 408 maycomprise one or more of the frontend components 102 of the retailer. Forexample, the server 408 may include a facility server 126 and/or one ormore workstations 128.

The signal diagram 400 also indicates a receptacle 410 disposed within aphysical retail store, into or in which one or more items are securedvia one or more electronic locks. For example, the receptacle 410 may beone of the receptacles 305 storing one or more items 308 that aresecured via one or more electronic locks 310, as illustrated in FIG. 3.Additionally, the receptacle 410 may include a transmitter and/or atransceiver disposed thereon, or within sufficient proximity of thereceptacle 410 so that the PED 405, when operated by a customer who maybe interested in handling the items stored within the receptacle 410 andis in the vicinity of the receptacle 410, is able to detect signalsgenerated by the transceiver/transmitter. The transmitter and/ortransceiver associated with the receptacle 410 may be the transceiver312 illustrated in FIG. 3, in an embodiment.

Additionally, the signal diagram 400 indicates a backend system 412. Inan embodiment, the backend system 412 is the back end portion 104 of thesystem 100 shown in FIG. 1A, and as such may include the centralprocessing system 140 and/or the server 202. At any rate, FIG. 4illustrates a database or data store 415 in which customer risk profilesare maintained, and a database or data store 418 in which item profilesare maintained. The data stores 415, 418 may be included in the backendsystem 412, or the data stores 415, 418 may be excluded from butnonetheless accessible to the backend system 412. In an embodiment, thedata store 415 comprises the risk profile store 148 of FIG. 1A, and thedata store 418 comprises the item profile store 150 of FIG. 1A.

The transceiver associated with the receptacle 410 may emit a beaconsignal 420, and when the PED 405 is disposed within the detection rangeof the transceiver, the PED 405 may automatically detect the beacon andthereby discover the transceiver associated with the receptacle 410(reference 422), thereby establishing a wireless communicationconnection between the PED 405 and transceiver associated with thereceptacle 410. In some embodiments, the wireless connection may beautomatically established, that is, the user of the PED 405 may not haveinitiated the discovery process and indeed, may be unaware of thediscovery process.

In some embodiments, though, the establishment of the wirelessconnection between the PED 405 and the transceiver associated with thereceptacle 410 may be triggered by the user of the PED 405. For example,the user may wish to access the items secured at the receptacle 410, andmay utilize an application executing on the device 405 to trigger theunlocking or un-securing of the items. The application may be anapplication 118 that is provided by the retailer or enterprise, e.g., aretailer client application, a loyalty card client application, etc.Alternatively, the application may be a web browser or equivalent viawhich the user accesses his or her electronic or web-based account withthe retailer or enterprise. At any rate, via the application executingon the Personal Electronic Device 405, the user may activate a usercontrol thereby initiating the discovery of the transceivercorresponding to the receptacle 410 (reference 422), and the eventualestablishment of the wireless connection between the PED 405 and thetransceiver corresponding to the receptacle 410.

Via the established wireless connection between the PED 405 and thetransceiver associated with the receptacle 410, the PED 405 may transmitor send an indication of an identity of a user or customer (reference425). The indication of the customer identity may comprise, for example,an identifier of the personal electronic device 405, such as anInternational Mobile Station Equipment Identity (IMEI), a MobileEquipment Identifier (MEID), an International Mobile Subscriber Identity(IMSI), an Electronic Serial Number (ESN), an integrated circuit cardidentifier (ICC-ID) of a card or chip of the PED 405, a Telephone Number(TN), and/or other suitable identifier. Such types of identifiers may beautomatically transmitted or sent from the PED 405 to the transceivercorresponding to the receptacle 410 upon establishment of the wirelessconnection, e.g., as part of the header and/or payload in the signalingthat is exchanged to establish the wireless connection. In thesesituations, the communication 425 may be omitted, as the indication ofthe customer identity is included in the communication 422.

In some scenarios, the indication of the customer identity may comprisean identification of an account of the customer with the retailer orenterprise (e.g., a loyalty account, an electronic or web-based account,etc.), and/or of a user ID or login ID associated therewith. In somescenarios, such as when a retailer client application is executing onthe PED 405, the indication of the customer identity may comprise anidentifier of the client application itself, e.g., as tracked by aserver of the retailer or enterprise. At any rate, the indication of thecustomer identity may be automatically sent from the PED 405 to thetransceiver of the receptacle 410, or may be sent upon request of theuser or customer, e.g., by activating a user control at the PED 405.

Upon reception of the indication of the customer identity (reference428), the transceiver corresponding to the receptacle 410 may cause thecustomer identity indication (reference 430) and optionally anindication of the type of item secured at the receptacle 410 to betransmitted or sent to the backend system 412. In the scenarioillustrated in FIG. 4, the transceiver corresponding to the receptacle410 has a priori knowledge of the types of items being secured of thereceptacle 410, and sends an indication of the type of item along withthe customer identity indication directly to the backend system 412(reference 430), e.g., via the network 130. In some embodiments (notshown), the transceiver corresponding to the receptacle 410 may send anindication of the obtained customer identity information to the localserver 408 servicing the particular physical retail store, and theserver 408 may determine the type of item being secured at thereceptacle 410 (e.g., by accessing a store plan or database that mapsreceptacles to items), and the server 408 may transmit or send thecustomer identity indication and an indication of the type of item tothe back end system 412, e.g., via the network 130.

Upon reception of the customer identity indication and the indication ofthe type of item (reference 432), the back end server 412 mayauthenticate and verify the customer based on the customer identityindication (reference 435). For example, the back end server 412 mayutilize the authentication and verification application 330 to verifythe received customer identity indication against customer data storedin the customer risk profile database 415 (as shown in FIG. 4), oragainst customer data stored in some other suitable database. Using theauthenticated and verified customer identity, the backend server 412 maydetermine a risk score corresponding to the identified customer(reference 438). The risk score may be determined (438) based on riskprofile data corresponding to the customer identity and stored in thedatabase 415. As previously discussed, the customer's risk profile mayinclude data or information pertaining to the customer's productpurchases, product returns, bounced checks, payment history, on-linebrowsing habits, and/or other historical actions/events that thecustomer has had with the retailer or enterprise. In some embodiments,the risk score of the identified customer may be determined (438)further based on item profile data corresponding to the identified itemand stored in the database 418, such as data indicative of the value ofthe item, whether or not the item has a history of theft are beingstolen, etc. Different types of customer risk profile data and/or itemprofile data may be weighted differently to determine the risk score, ifdesired. In an embodiment, the customer risk profile database 415 maycomprise the customer risk profile data store 148 of FIG. 1A, and theitem profile database 418 may comprise the item profile data store 150of FIG. 1A.

The signal diagram 400 depicts the determined risk score beingtransmitted or sent from the back end server 412 to the local server 408that is servicing the physical retail store in which the receptacle 410is disposed (reference 440). At the local server 408, a determinationmay be made as to whether or not the risk score is indicative of anacceptable risk or of an unacceptable risk (reference 442). If the riskscore is indicative of an acceptable risk, the electronic lock(s)securing the items at the receptacle 410 may be automatically andremotely unlocked. For example, the local store server 408 may send aremote unlock signal, command, or instruction 445 to the electroniclock(s) associated with the receptacle 410, e.g., via the in-storenetwork(s) 318. A notification that the items have been remotelyunsecured/unlocked may be sent to the customer device 405, e.g., by thetransceiver proximate to the receptacle 410 as shown in FIG. 4, or bythe local server 408 (not shown in FIG. 4). Additionally oralternatively, an indication that the items have been remotelyunsecured/unlocked may be locally provided at or near the receptacle,e.g. via a light, display screen, or other indicator.

If the risk score is indicative of an unacceptable risk for an automaticunlocking of the receptacle 410, an agent of the retailer may benotified. For example, the local server 408 may transmit or send, to anagent device 450, a notification including an indication of the riskscore, the receptacle 410, the item secured at the receptacle 410, thevalue of the item secured at the receptacle 410, and/or the electroniclock(s) associated with the receptacle 410 (reference 448). Uponreception of the notification, an agent operating the device 450 mayevaluate the received information and make a decision as to whether heor she is to remotely unlock the receptacle 410 for the customer bycausing a remote unlock signal, command, or instruction to be sent tothe electronic lock (reference 452), or whether he or she is tophysically walk over to the receptacle 410 and manually open theelectronic lock(s) so that the agent may monitor customer's behavior. Inan embodiment, the agent may remotely unlock the receptacle 410 byactivating a user control at his or her device 450, thereby causing anunlock signal to be transmitted via the in-store network 318 to theelectronic lock(s) (reference 452), and thus causing the items at thereceptacle 410 to be automatically unsecured and made accessible to thecustomer. A notification that the items have been remotelyunsecured/unlocked may be sent to the customer device 405, e.g., by thetransceiver proximate to the receptacle 410 or by the agent device 450(not shown in FIG. 4). Additionally or alternatively, an indication thatthe items have been remotely unsecured/unlocked may be locally providedat or near the receptacle, e.g. via a light, display screen, or otherindicator.

In some configurations of the system 100, when the items at thereceptacle 410 are automatically unsecured (e.g., via the remote unlocksignal, command, or instruction 445 or the remote unlock signal,command, or instruction 452), a sensor disposed at the receptacle 410may detect the removal of items (reference 460) and may indicate theoccurrence or event of the removal to the local server 408 (reference462). For example, the sensor may be an RFID (Radio-FrequencyIdentification) or other suitable detector that is positioned to detecta movement of a corresponding tag that is affixed to an item that issecured at the receptacle 410. For example, as shown in FIG. 3, a sensor455 a corresponding to receptacle 305 a is disposed at a location thatenables the sensor 455 a to detect the removal of items 308 a via theiraffixed tags 458 a, and a sensor 455 b corresponding to receptacle 305 bis disposed at a location that enables the sensor 455 b to detect theremoval of items 308 b via their affixed tags 458 b. In FIG. 4, upon thedetection of the removal of an item at the receptacle 410 (reference460), the sensor may cause a signal indicative of the item's removal tobe transmitted to the store server 126 (reference 462), e.g., via thein-store network(s) 318, so that the item may be tracked.

For example, the local server 408 may set a timer (reference 465)corresponding to when the item was removed from the receptacle 410. Theserver 408 may start the timer when the server 408 receives the signal462, or the server 408 may set the timer in accordance with a timestampincluded in the signal 462. The duration of the time interval for whichthe timer is set may be determined a priori, and the duration may bemodifiable. At any rate, if the item is purchased and/or otherwisescanned at a register within the retail store before the timer expires,the server 408 may cancel the timer (reference 468) and cause thepurchase and/or the scanning of the item to be reflected in thecustomer's risk profile stored at the database 415 (references 470 a,470 b). On the other hand, if the item has not been purchased and/orotherwise scanned at any register in the retail store when the timerexpires, as denoted in FIG. 4 by the reference 472, this event may beindicative of theft or some other undesirable condition relating to theremoved item. Accordingly, in this situation 472, the server 408 mayalert an agent of the retailer by sending an alert to the agent's device450 (reference 475). The alert may include an indication of the removeditem, the receptacle 410, the time at which the item was removed fromthe receptacle, and/or other data. Upon viewing the alert, the agent maytake the appropriate steps to recover the item and/or prevent loss ofthe item.

In some scenarios, after the item and/or receptacle 410 has beenremotely unlocked or unsecured, the item and/or the receptacle 410 mayautomatically be re-secured. For example, after reception of a remoteunlock signal 445, 452, a timer may be set, and the electronic lock mayautomatically re-lock after the timer's expiration (reference 478). Theduration of the timer may be configurable and modifiable, if desired.Additionally or alternatively, the electronic lock may automaticallyre-lock after the detection of the removal of an item (reference 462),and/or when instructed to do so by an agent device 450 (reference 480),e.g., upon activation of a corresponding user control at the agentdevice 450. In these manners, the maximum time during which an item isunsecured may be controlled to mitigate the risk of the item beingshoplifted or stolen.

FIGS. 5A-5B illustrate a flow chart of an example method 500 ofmitigating the risk of retail theft at physical retail stores of aretailer or enterprise. The method 500 may operate in conjunction withembodiments of the system 100 of FIGS. 1A-1D, the physical retail store272 of FIG. 2, the system portion 300 of FIG. 3, the signal diagram 400of FIG. 4, and/or other systems, stores, and/or signal diagrams. Forease of discussion, though, and not for limitation purposes, the method500 is discussed with simultaneous reference to FIGS. 1A-1D and FIGS.2-4.

In FIG. 5A, at a block 502, the method 500 may include determining anidentity of a customer based on a wireless transmission that isdelivered directly between (i) a transceiver corresponding to receptaclein or at which an item is housed and secured via an electronic lock, and(ii) a wireless electronic device, such as a customer's PersonalElectronic Device, that is located within communication range of thetransceiver. For example, referring to FIG. 3, the transceiver may beone of the wireless transceiver 312, and the receptacle may be one ofthe receptacles 305 in or at which items 308 are housed and secured viaone of the electronic locks 310.

In some embodiments, determining the identity of the customer based onwireless transmission may be based on the content of the payload of thewireless transmission. In some embodiments, determining the identity ofthe customer based on wireless position may be based on the content ofthe header of the wireless transmission. At any rate, whether thecustomer's identity is based on the wireless transmission's payloadand/or header, the identity of the customer may be determined based onan identification of the wireless electronic device, such as an IMEI,and MEID, and IMSI, and ESN, an ICC-ID of a card or chip included in thewireless electronic device, a TN, and/or another suitable identifier.Additionally or alternatively, the identity of the customer may bedetermined based on an identification of an account of the customer witha retailer or enterprise, such as a loyalty account, and electronic orweb-based account, etc., and/or of a user ID, login ID, or othercustomer-specific indicia associated therewith. In some embodiments, theidentity of the customer may be determined based on an identifier of theclient application that is executing on the customer device, e.g. astracked by a server of the retailer or enterprise.

At a block 505, the method 500 may include determining, based on thedetermined customer identity and on a risk profile of the customer, arisk score corresponding to the customer accessing the secured item. Therisk profile of the customer may be stored at one or more memories ordata storage devices included in a backend system of the retailer orenterprise, and may include data that is indicative of a history ofunpaid items corresponding to the customer, a history of returning itemscorresponding to the customer, a history of non-payment or insufficientfunds, history of alleged theft, etc. For example, the risk profile maybe stored at the customer risk profile data store 148 illustrated inFIG. 1A.

In an embodiment, determining the risk score corresponding to thecustomer accessing the secured item (block 505) may be further based onan item profile of the secured item. The identity or type of the secureditem may be ascertained from the wireless transmission, e.g., fromcontents of the payload identifying the secured item, and/or byidentifying the transceiver that received the wireless transmission. Theprofile of the secured item may be stored at one or memories or datastorage devices included in the backend system of the retailer orenterprise, and may include data that is indicative of a value of theitem, a likelihood of theft of the item, a resale market or demand forthe item, etc. For example, the item profile of the secured item may bestored at the item profile store 150 illustrated in FIG. 1A.

The method 500 may additionally include determining whether or not therisk score is indicative of an acceptable risk (block 508). For example,the determined risk score may be compared to a threshold to determinewhether or not the risk score is indicative of an acceptable risk. Atthe block 508, if the risk score is determined as being indicative of anacceptable risk, the method 500 may include automatically sending anelectronic signal to trigger the remote unlocking of the electronic lockat the receptacle at which the item is secured (block 510). Theelectronic signal may include a remote unlock command or instruction,for example, and the electronic signal may be automatically sent to theelectronic lock to release the secured item (e.g., in a manner such aspreviously discussed with respect to the signal 445 of FIG. 4).Alternatively, an electronic signal indicating that the electronic lockmay be remotely unlocked may be automatically sent to a device beingoperated by an agent of the retailer or enterprise, and the operatingagent may cause a remote unlock signal or command to be transmitted fromthe agent device to the electronic lock (e.g., in a manner such aspreviously discussed with respect to the signal 452 of FIG. 4).

On the other hand, if at the block 508 the risk score is determined asbeing indicative of an unacceptable risk, the method 500 may includesending an electronic signal to a device being operated by an agent ofthe retailer or enterprise (block 512). The signal may include anindication that the secured item is to be manually unlocked, or that thesituation requires an agent evaluation. If the signal indicates that thesecured item is to be manually unlocked, e.g., as determined at theblock 515, the agent may physically go to the receptacle and manuallyunlock the secured item so that the customer's handling of the item maybe monitored in the presence of the agent (block 518).

In some scenarios, as determined at the block 515, the signal receivedat the agent device may indicate that an agent evaluation is needed. Inthis situation, the signal may include data that is indicative of thedetermined risk score, an indication of the identity of the customer, anindication of the item, an indication of the receptacle, etc. The agentmay evaluate the received data (block 520). Based on his or herevaluation, the agent may decide to physically unlock the electroniclock so that the customer's handling of the item may be monitored in thepresence of the agent (block 518), or the agent may decide to causeelectronic lock to be remotely unlocked (e.g., in a manner such aspreviously discussed with respect to the signal 452 of FIG. 4) so thatthe customer has access to the secured item. For example, the agent mayactivate a user control at the agent device that causes an electronicsignal to be sent from the agent device to trigger the remote unlockingof the electronic lock at the receptacle at which the item is secured(block 510).

Turning now to FIG. 5B, the method 500 may optionally include blocks520-530, in some embodiments. As shown in FIG. 5B, the blocks 520-530may be executed when a remote unlock signal is sent to the electroniclock (block 510). At the block 520, the method 500 may includedetermining that an item has been removed from the receptacle. Thisdetermination may be made, for example, based on a detection, by asensor, of the movement of an electronic tag that is attached to theitem, in a manner such as previously described with respect to reference460 in FIG. 4. In an embodiment, the sensor and the electronic tag maycomprise RFID technology or some other suitable sensing technology.

At the block 522, the method 500 may include starting a timer for apre-determined time interval. The duration of the pre-determined timeinterval may be set a priori, and may be configurable. The start time ofthe pre-determined time interval may correspond to a time at which theitem removal was detected (block 520) and/or may correspond to a time atwhich the item removal was indicated to the facility server 126, forexample.

At the block 525, the method 500 may include determining whether or notthe removed item has been purchased, scanned, and/or otherwise processedor detected by a workstation 128, the facility server 126, and/or someother device within the in-store network 318 within the pre-determinedinterval. If the removed item has not been processed or detected withinthe pre-determined time interval, the method 500 may include sending analert to a device being operated by an agent of the retailer orenterprise (block 528), e.g., in a such as previously described withreferences 472, 475 of FIG. 4. The alert may include therein dataindicative of the removed item, the time of the item's removal, thereceptacle, the customer, etc. Based on the alert, the agent may takeappropriate loss prevention actions. Further, the customer's riskprofile may be updated to reflect the occurrence of the timer expiration(block 530).

If, at the block 525, the removed item has been processed or otherwisedetected within the pre-determined time interval, the method 500 mayproceed to update the risk profile of the customer accordingly (block530).

Thus, based on the events that transpire after the removal of the itemfrom the receptacle was detected or determined at the block 520, thecustomer's risk profile may be updated (block 530). The updated customerrisk profile may then be utilized in determining an updated risk scorecorresponding to automatically triggering the remote unlocking of itemsfor the customer in the future.

In some embodiments, at least a portion of the method 500 may beperformed by one or more frontend components 102 of the system 100, andat least another portion of the method 500 may be performed by one ormore backend components 104 of the system 100. In other embodiments,such as when a facility server 126 of a retail store 112 is virtuallyimplemented external to the physical retail store 112, the entirety ofthe method 500 may be performed by one or more backend components 104 ofthe system 100 that provide a virtual facility server 126 to service thephysical retail store 112.

This disclosure is intended to explain how to fashion and use variousembodiments in accordance with the technology rather than to limit thetrue, intended, and fair scope and spirit thereof. The foregoingdescription is not intended to be exhaustive or to be limited to theprecise forms disclosed. Modifications or variations are possible inlight of the above teachings. The embodiment(s) were chosen anddescribed to provide the best illustration of the principle of thedescribed technology and its practical application, and to enable one ofordinary skill in the art to utilize the technology in variousembodiments and with various modifications as are suited to theparticular use contemplated. All such modifications and variations arewithin the scope of the embodiments as determined by the appendedclaims, as may be amended during the pendency of this application forpatent, and all equivalents thereof, when interpreted in accordance withthe breadth to which they are fairly, legally and equitably entitled.

What is claimed:
 1. A system for providing enterprise security, thesystem comprising: a plurality of receptacles for securing items, theplurality of receptacles that are disposed at a location associated withan enterprise and that are secured via a plurality of electronic locks;a security system to which the plurality of electronic locks iscommunicatively connected, the security system including one or moreprocessors and one or more non-transitory computer-readable storagemedia storing thereon computer-executable instructions that, whenexecuted by the one or more processors, cause the security system to:receive, via a transceiver corresponding to the location associated withthe enterprise, a signal including information indicative of a user whois within vicinity of the plurality of the receptacles; and based on (i)the information indicative of the user, and (ii) a profile of the userthat is stored in one or more databases of the system and includes datacorresponding to interactions of the user with the enterprise, cause anelectronic unlocking signal to be sent to a particular electronic locksecuring a particular receptacle, of the plurality of receptacles, thatis associated with the user, thereby providing the user access to theparticular receptacle.
 2. The system of claim 1, wherein the informationindicative of the user who is within the vicinity of the plurality ofreceptacles is provided by an electronic device associated with theuser.
 3. The system of claim 2, wherein the electronic device associatedwith the user is a personal electronic device operated by the user, andwherein the information indicative of the user is wirelessly provided bythe personal electronic device operated by the user.
 4. The system ofclaim 1, wherein the data corresponding to interactions of the user withthe enterprise included in the user profile includes at least one of aproduct purchase or payment history.
 5. The system of claim 1, whereinthe electronic unlocking signal is caused to be sent to the particularelectronic lock further based on at least one of: an unlocking requestgenerated by an electronic device associated with the user, or anauthentication of the user.
 6. The system of claim 1, wherein: the useris a first user, the signal is a first signal, the particular receptacleis a first particular receptacle, the particular electronic lock is afirst particular electronic lock, and the electronic unlocking signal isa first electronic unlocking signal; and the computer-executableinstructions, when executed by the one or more processors, further causethe security system to: receive a second signal including informationindicative of a second user who is within the vicinity of the pluralityof receptacles; and based on the information indicative of the seconduser and a profile of the second user that includes data correspondingto interactions of the second user with the enterprise, cause a secondelectronic unlocking signal to be sent to a second particular electroniclock securing a second particular receptacle, of the plurality ofreceptacles, that is associated with the second user, thereby providingthe second user access to the second particular receptacle.
 7. Thesystem of claim 1, further comprising one or more sensors to detect aremoval of an item from the unlocked receptacle.
 8. A method ofproviding enterprise security, the method comprising: receiving, by oneor more processors of a security system, a signal including informationindicative of a user who is within vicinity of a plurality of securedreceptacles, the plurality of secured receptacles disposed at a locationassociated with an enterprise, and the signal received via a transceivercorresponding to the location associated with the enterprise; and basedon (i) the information indicative of the user, and (ii) a profile of theuser that is stored in one or more databases of the system and includesdata corresponding to interactions of the user with the enterprise,sending an electronic unlocking signal to an electronic lock securing aparticular receptacle, of the plurality of secured receptacles, that isassociated with the user, thereby un-securing the particular receptacleto provide the user with access to the particular receptacle.
 9. Themethod of claim 8, wherein receiving the signal including theinformation indicative of the user comprises receiving the signalincluding information indicative of the user that is provided by anelectronic device associated with the user.
 10. The method of claim 9,wherein the information indicative of the user is wirelessly provided bythe electronic device associated with the user.
 11. The method of claim8, wherein sending the electronic unlocking signal to the electroniclock based on the profile of the user including the data correspondingto the interactions of the user with the enterprise comprises sendingthe electronic unlocking to the electronic lock based on at least one ofproduct purchase information or payment history information stored inthe profile of the user.
 12. The method of claim 8, wherein sending theelectronic unlocking signal to the electronic lock is further based onat least one of: an unlocking request generated by an electronic deviceassociated with the user, or an authentication of the user.
 13. Themethod of claim 8, wherein the user is a first user, the signal is afirst signal, the particular receptacle is a first particularreceptacle, the electronic lock is a first electronic lock, and theelectronic unlocking signal is a first electronic unlocking signal; andthe method further comprises: receiving, by the one or more processorsof the security system, a second signal including information indicativeof a second user who is within the vicinity of the plurality of securedreceptacles; and based on the information indicative of the second userand a profile of the second user that includes data corresponding tointeractions of the second user with the enterprise, sending a secondelectronic unlocking signal to a second electronic lock securing asecond particular receptacle, of the plurality of secured receptacles,that is associated with the second user, thereby providing the seconduser access to the second particular receptacle.
 14. The method of claim8, further comprising, subsequent to causing the electronic unlockingsignal to be sent to the electronic lock, causing the electronic lock tore-secure the particular receptacle based on a removal of an item fromthe particular receptacle.
 15. One or more non-transitory, tangiblecomputer-readable memories storing thereon a set of computer-executableinstructions thereon that, when executed by one or more processors,cause a security system to: receive, via a transceiver corresponding toa location at which a plurality of secured receptacles associated withan enterprise is disposed, a signal including information indicative ofa user who is within vicinity of the plurality of secured receptacles;and based on (i) the information indicative of the user, and (ii) aprofile of the user that is stored in one or more databases of thesystem and includes data corresponding to interactions of the user withthe enterprise, send an electronic unlocking signal to an electroniclock securing a particular receptacle, of the plurality of securedreceptacles, that is associated with the user, thereby un-securing theparticular receptacle to provide the user with access to the particularreceptacle.
 16. The one or more non-transitory, tangiblecomputer-readable memories of claim 15, wherein the signal including theinformation indicative of the user is wirelessly provided by anelectronic device associated with the user.
 17. The one or morenon-transitory, tangible computer-readable memories of claim 15, whereinthe data corresponding to the interactions of the user with theenterprise includes at least one of product purchase information orpayment history information.
 18. The one or more non-transitory,tangible computer-readable memories of claim 15, wherein the securitysystem sends the electronic unlocking signal to the electronic lockfurther based on at least one of: an unlocking request generated by anelectronic device associated with the user, or an authentication of theuser.
 19. The one or more non-transitory, tangible computer-readablememories of claim 15, where the set of computer executable instructionsare further executable to cause the security system to: subsequent tothe sending of the electronic unlocking signal to the electronic lock,causing the electronic lock to re-secure the particular receptacle basedon a removal of an item from the particular receptacle.
 20. The one ormore non-transitory, tangible computer-readable memories of claim 19,wherein the removal of the item from the particular receptacle isdetected by one or more sensors disposed at the particular receptacle.